Extraction of a private datum to authenticate an integrated circuit
First Claim
Patent Images
1. A method for extracting a private datum from an integrated circuit taking part in an authentication procedure performed by an external device using the private datum, comprising steps of:
- generating the private datum on request, using at least one electrical parameter obtained from a physical parameter network; and
making the private datum ephemeral, wherein upon each generation of the private datum, a lifetime of the private datum is initialized and the private datum is deleted from at least one first storage element containing the private datum, at the end of the lifetime, and wherein the physical parameter network is programmed, at least partially, by a binary word provided by a storage element and specific to the integrated circuit, wherein the physical parameter network comprises a plurality of electrical paths and the private datum comprises a plurality of bits, wherein each electrical path from the plurality of electrical paths provides a respective bit from the plurality of bits, wherein at least one electrical path from the plurality of electrical paths includes a delay element, and wherein the delay element provides a delay different from a delay provided by at least one another electrical path from the plurality of electrical paths.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and a circuit for extracting a secret datum from an integrated circuit taking part in an authentication procedure that uses an external device that takes this secret datum into account, the secret datum being generated on request and made ephemeral.
-
Citations
13 Claims
-
1. A method for extracting a private datum from an integrated circuit taking part in an authentication procedure performed by an external device using the private datum, comprising steps of:
-
generating the private datum on request, using at least one electrical parameter obtained from a physical parameter network; and making the private datum ephemeral, wherein upon each generation of the private datum, a lifetime of the private datum is initialized and the private datum is deleted from at least one first storage element containing the private datum, at the end of the lifetime, and wherein the physical parameter network is programmed, at least partially, by a binary word provided by a storage element and specific to the integrated circuit, wherein the physical parameter network comprises a plurality of electrical paths and the private datum comprises a plurality of bits, wherein each electrical path from the plurality of electrical paths provides a respective bit from the plurality of bits, wherein at least one electrical path from the plurality of electrical paths includes a delay element, and wherein the delay element provides a delay different from a delay provided by at least one another electrical path from the plurality of electrical paths. - View Dependent Claims (2, 3, 4, 10)
-
-
5. A method for extracting a private datum from an integrated circuit taking part in an authentication procedure by means of an external device taking the private datum into account, comprising the steps of generating the private datum on request and making it ephemeral;
-
wherein the private datum is obtained at least partially from using at least one electrical parameter measured from a physical parameter network; wherein the physical parameter network is programmable; wherein the physical parameter network is programmed, at least partially, by a binary word provided by a storage element and specific to the integrated circuit; and wherein the physical parameter network comprises a plurality of electrical paths and the private datum comprises a plurality of bits, and wherein each electrical path from the plurality of electrical paths provides a respective bit from the plurality of bits; wherein the private datum is obtained at least from; a first datum stored in the integrated circuit, and a second datum generated on request by the physical parameter network; and wherein the second datum is made ephemeral. - View Dependent Claims (6, 7, 8)
-
-
9. An integrated circuit, including:
-
means for generating, using at least one electrical parameter obtained from a physical parameter network, a private datum to be provided outside of the circuit to be used in an authentication procedure of the circuit; a storing register for temporary storing said private datum; a reset circuit for re-initialization of said storing register at the end of a lifetime of the private datum so as to render said private datum ephemeral, wherein the lifetime is initialized upon generation of the private datum; and means for triggering the generation of said private datum upon a signal external to the integrated circuit, wherein the physical parameter network comprises a plurality of electrical paths and the private datum comprises a plurality of bits, wherein each electrical path from the plurality of electrical paths provides a respective bit from the plurality of bits, and wherein the private datum is obtained from a combination of at least; a first datum stored in the integrated circuit, and a second datum generated on request by the physical parameter network. - View Dependent Claims (11, 12, 13)
-
Specification